0aea04a896234b4e629d948c3792dd4e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0aea04a896234b4e629d948c3792dd4e_JaffaCakes118
Size

209KB
MD5

0aea04a896234b4e629d948c3792dd4e
SHA1

173fe5408bcde8a901e73833f246993f964be511
SHA256

9842bd9c71f383a2c03ae2e2fee3bc70bcc15f2bd65d24bae24ef6f3dfdd7bbb
SHA512

dfee9a311db1fee6ba4140765101387be5d3c72100a777017353a7da24d7887999bce5988a611509e7ffee9de39ceb2d2ad2c99af15ab5d4e9bb71f51c58771f
SSDEEP

3072:GdvIiQz4I8gkJPRlv/d6/CqhR9+FAIrWMOpl0kQqIXXltiTJ:oG8BrZdKFR+yZp6bK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0aea04a896234b4e629d948c3792dd4e_JaffaCakes118

Files

0aea04a896234b4e629d948c3792dd4e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

56cd96feaa1e165a62132d37e7205117

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

ArcTo
BeginPath
BitBlt
CreateDCW
CreateDIBSection
CreateICA
CreateICW
CreatePalette
CreatePolygonRgn
EndDoc
EnumFontFamiliesA
GetDCOrgEx
GetEnhMetaFileDescriptionA
GetMapMode
GetNearestColor
GetTextFaceW
GetTextMetricsW
PlayEnhMetaFile
RemoveFontResourceA
SaveDC
SetColorAdjustment
SetDIBColorTable
SetMapMode
SetTextAlign
SetWindowExtEx
SetWindowOrgEx
StrokeAndFillPath

ole32

CLSIDFromString
CoCreateGuid
CoCreateInstance
CoDisconnectObject
CoGetClassObject
CoInitialize
CoInitializeEx
CoMarshalInterThreadInterfaceInStream
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemRealloc
CreateStreamOnHGlobal
GetRunningObjectTable
IIDFromString
OleDraw
OleFlushClipboard
OleGetClipboard
OleIsCurrentClipboard
OleSetClipboard
OleUninitialize
StgOpenStorageOnILockBytes
StringFromCLSID

shell32

DragAcceptFiles
DragFinish
DragQueryFileW
ExtractAssociatedIconW
ExtractIconA
ExtractIconExA
SHBindToParent
SHBrowseForFolderA
SHBrowseForFolderW
SHFileOperationA

user32

CallNextHookEx
CheckMenuItem
EndDialog
EnumWindows
GetClientRect
GetMenuItemID
GetMenuState
GetSystemMenu
GetSystemMetrics
SetForegroundWindow
SetRect
SetWindowPlacement

advapi32

AllocateAndInitializeSid
CloseServiceHandle
CryptHashData
FreeSid
InitializeAcl
LookupPrivilegeValueA
OpenServiceA
QueryServiceStatus
RegCreateKeyExW
RegDeleteKeyA
RegDeleteKeyW
RegDeleteValueA
RegEnumKeyExA
RegEnumKeyW
RegOpenKeyExA
SetSecurityDescriptorGroup

kernel32

CreateDirectoryA
CreateFileMappingA
CreateProcessA
CreateThread
DuplicateHandle
ExitThread
FreeLibrary
GetConsoleOutputCP
GetFileSize
GetFullPathNameA
GetSystemDirectoryW
GetUserDefaultLangID
HeapCreate
InterlockedCompareExchange
LeaveCriticalSection
SetEndOfFile
SetErrorMode
SetHandleCount
SetThreadPriority
SetUnhandledExceptionFilter
lstrcmpA

comctl32

CreatePropertySheetPageA
CreateStatusWindowA
DestroyPropertySheetPage
ImageList_Create
ImageList_DragEnter
ImageList_Draw
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_LoadImageW
ImageList_SetBkColor
ImageList_SetIconSize
InitializeFlatSB
PropertySheetA
PropertySheetW

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Y700uCfr
Size: 512B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

56cd96feaa1e165a62132d37e7205117

Headers

File Characteristics

Imports

gdi32

ole32

shell32

user32

advapi32

kernel32

comctl32

Sections

.text Size: 88KB - Virtual size: 87KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 98KB - Virtual size: 98KB

.rsrc Size: 18KB - Virtual size: 17KB

Y700uCfr Size: 512B - Virtual size: 120KB

.text
Size: 88KB - Virtual size: 87KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 98KB - Virtual size: 98KB

.rsrc
Size: 18KB - Virtual size: 17KB

Y700uCfr
Size: 512B - Virtual size: 120KB